The Linux Foundation Projects
Skip to main content
All Posts By

Shane Coughlan

Shane Coughlan is an expert in communication, security and business development. His professional accomplishments include spearheading the licensing team that elevated Open Invention Network into the largest patent non-aggression community in history, establishing the leading professional network of Open Source legal experts and aligning stakeholders to launch both the first law journal and the first law book dedicated to Open Source. Shane has extensive knowledge of Open Source governance, internal process development, supply chain management and community building. His experience includes engagement with the enterprise, embedded, mobile and automotive industries.

OpenChain Newsletter #80

By Monthly Newsletter, News

Newsletter – Issue 80 – July 2025

The OpenChain Newsletter provides a monthly summary of our work. It contains an overview of what we are doing to build trust around license compliance and security in the open source supply chain. We accept suggestions and ideas. Feel free to mail us at any time.

Key Announcements & Action Items:

  • Public Comment Period for AI Bill of Materials: The OpenChain Project has announced a public comment period for its “Artificial Intelligence System Bill of Materials – Compliance Management Guide for the Supply Chain.” This is a key opportunity for professionals to provide feedback and shape this important guidance.
  • New Leadership: The 2025/2026 chairs for the OpenChain Specification, Education, and Telco Work Groups have been elected.
    • Action: Meet the new chairs and consider reaching out to them with your ideas and offers of support.

Conformance & Community Growth:

Several companies have announced their conformance with OpenChain ISO/IEC 5230, demonstrating the standard’s growing adoption across various industries.

New Resources & Materials:

  • Updated Overview Slides: The OpenChain overview slides have been updated for July 2025, providing fresh material to explain the path to a more trusted supply chain.
    • Action: Get the slides to use in your own presentations and to advocate for open source compliance within your organization.
  • Telco Industry Handbook & Translation: A new handbook for software supply chain security in the Telco industry has been released, along with a Korean translation of the OpenChain Telco SBOM Guide.

Webinars & Recordings:

A wealth of knowledge has been shared through recent webinars and community calls. These recordings are a great way to catch up on the latest discussions and best practices.

Other Community Updates:

  • Japan Work Group Community Day: Notes and pictures from the 34th Community Day in Yokohama. View Here
  • Tooling Work Group Slides: Slides from the July 2nd meeting are available. View Here

To get more involved in the OpenChain Project, including joining mailing lists, attending meetings, and contributing to the work, please visit: https://openchainproject.org/participate

Note: This newsletter usually only contains primary meetings. Some community meetings are not recorded or are released through other channels.

Read Previous Newsletters:

AI Usage:

This newsletter is created by using a template, curating links from a month of OpenChain news posted on the blog and using these prompts on Google Gemini to fill out the central news:

  • “Summarize the following newsletter for folks interested in the open source compliance to learn the latest changes in the space and find possible items that can act on. Include the links in this newsletter. Add notes on potential further actions by readers, particularly around attending future meetings. Direct people to this link to participate further: https://openchainproject.org/participate

The newsletter is then subject to an edit cycle. If you spot any errors we missed, please contact us.

OpenChain @ OSS Europe – An Epic Community Presence

By Featured, News

Get To Know Our Thought-Leaders:

The OpenChain Project will have a substantial presence at Open Source Summit Europe next week! Catch talks and panels from our Board Members and Work Group Chairs, and have a chance to ask questions or share ideas.

Learn More:

+ The Mini-Summit on the 28th of August will be Special:

The OpenChain Mini-Summit will feature a great many of our current board members and chairs in one place, ready to share their knowledge and experience with both beginners and experts in license, security and regulatory compliance.

Get to know:
☑️ Ayumi Watanabe, Hitachi Solution
☑️ Helio Chissini de Castro, CARIAD
☑️ Jimmy Ahlberg, Ericsson
☑️ Jonathan Torres, META
☑️ Marcel Kurzmann, Bosch
☑️ Marc-Etienne Vargenau, Nokia
☑️ Masato Endo, Toyota
☑️ Norio Kobota, Sony
☑️ Sandra Hermoso Rodriguez, Arm
☑️ Taiki Kawamura, Honda

It’s Free To Register for the Mini-Summit:

Review of Public Comments and Next Steps: Artificial Intelligence System Bill of Materials – Compliance Management Guide for the Supply Chain

By News

Public Comment Period Closed:

The OpenChain AI Work Group collaboratively produced a draft guide to identify key process points for a quality AI compliance program:

The Public Comment period ended on 2025-08-18 at 11:00 UTC as per our official announcement:

Next Steps:

  1. The AI Work Group, Governing Board, Steering Committee will review comments received:
  2. The Governing Board will determine a release date for the guide.

Conclusion:

It is requested that the AI Work Group members provide any responses or thoughts on the two comments received by Close of Business CEST on the 26th of August, so that the Governing Board can undertake their review and make their decision at the Q3 Governing Board meeting in Amsterdam on the 27th of August.

YOU CAN SUBMIT A COMMENT BY:

  1. Contributing to the open issues on the OpenChain Project Reference Library GitHub Repository:
    https://github.com/OpenChain-Project/Reference-Material/issues
  2. Emailing the OpenChain AI Work Group mailing list:
    https://lists.openchainproject.org/g/ai

OpenChain @ 2025CCF China Open Source Conference: Supply Chain Compliance Forum in the AI Era

By News

The OpenChain Project recently held a special mini-summit at the 2025CCF Open Source Conference in Shanghai. The schedule was lead by Zhenhua Sun of ByteDance, Chair of the OpenChain China Work Group, and featured both legal and technical topics related to compliance. The goal was to highlight available solutions in an era when open source and artificial intelligence are intersecting, and with the help of our local community, we had a great chance to start this important discussion.

Learn More About The Event:

Call for Community Collaboration: Translations of ISO/IEC 5230 and ISO/IEC 18974 Self-Certification

By News

We recently improved our English-language self-certification for both of the OpenChain ISO standards: https://openchainproject.org/news/2025/08/12/updates-to-openchain-self-certification

Now it is time to think about how we can help even more organizations benefit from our standards and a more trusted supply chain. To that end, we are launching a request for community collaboration around translations in:

  • German
  • Japanese
  • Korean
  • Simplified Chinese
  • Traditional Chinese

To kick-start the process there are (clearly marked) draft machine translations on GitHub. Hopefully this will help make it easier for people to jump in and complete the work with error correction or refinement.

RECORDING: OpenChain Monthly Specification and Education Call (North America – Europe) – 2025-08-13

By News

We Discussed:

Quite a few things! Lead by Chris Wood (Chair, Specification Work Group) and Martin Yagi (Chair Education Work Group), the call covered the following agenda:

  1. OpenChain Project News
  2. Open Compliance Summit – Call for Papers
  3. Specification Work Group – Some Questions for the Community
  4. Education Work Group – Update on Status and Community Work Items
  5. Any Other Business?

A reminder for those in Asia – while this edition of the monthly call is happening in the darkest hours of the night (01:30 in Japan!), we also have a monthly Europe / Asia call that works better for those in Eastern time zones. Check out the schedule for this and all our other meetings here: https://openchainproject.org/participate

Watch the Recording:

Coming Next:

  • A ton of work pending on education, and a survey to be released for the spec. Expect a strong focus on looking at what we have accomplished, looking at feedback, and making it better.

Join Our Work:

Everyone is welcome to be part of the Specification Work Group. You can join their mailing list here:
https://lists.openchainproject.org/g/specification/

You can find and be part of all OpenChain calls through our participation page here:
https://openchainproject.org/participate

Webinar: Understanding the CHAOSS Project

By automation, community, News, Webinar

About This Webinar:

CHAOSS is a Linux Foundation project focused on creating metrics, metrics models, and software to better understand open source community health on a global scale. This webinar delves into how it accomplishes these goals, and how you can get involved. Huge thanks to Dr. Dawn Foster and Prof. Matt Germonprez for presenting, and to Andrew Katz for hosting!

Watch the Webinar:

More About Our Webinars:

This event is part of the overarching OpenChain Project Webinar Series. Our series highlights knowledge from throughout the global OpenChain eco-system. Participants are discussing approaches, processes and activities from their experience, providing a free service to increase shared knowledge in the supply chain. Our goal, as always, is to increase trust and therefore efficiency. No registration or costs involved. This is user companies producing great informative content for their peers.

Check Out The Rest Of Our Webinars

This OpenChain Webinar was broadcast on 2025-08-13.

Updates to OpenChain Self-Certification

By Featured, News

The OpenChain Project has always offered online self-certification support, and we are delighted to announce that this has been improved for our two ISO/IEC standards:

Any organization can self-certify to OpenChain ISO/IEC 5230 or OpenChain ISO/IEC 18974. It is as simple as answering “yes” to all the questions on the online form. If an organization cannot answer “yes” to all of the questions, it does not yet meet the requirements of the standard.

Please note that this is a self-certification, and an organization is solely responsible for the accuracy of the statements it makes about conformance.

OpenChain Newsletter #79

By Monthly Newsletter, News

Newsletter – Issue 79 – June 2025

The OpenChain Newsletter provides a monthly summary of our work. It contains an overview of what we are doing to build trust around license compliance and security in the open source supply chain. We accept suggestions and ideas. Feel free to mail us at any time.

News:

Note: This newsletter usually only contains primary meetings. Some community meetings are not recorded or are released through other channels.

Read Previous Newsletters:

AI Usage:

This newsletter is created by using a template, curating links from a month of OpenChain news posted on the blog and using these prompts on Google Gemini (free version) to fill out the central news:
  • “summarize the following newsletter for folks interested in the open source compliance to learn the latest changes in the space and find possible items that can act on.”
and
  • “include the links in this newsletter”
The newsletter is then subject to an edit cycle. If you spot any errors we missed, please contact us.